[wp-trac] [WordPress Trac] #21495: wp_insert_user allows a user to be created with empty passwords
WordPress Trac
wp-trac at lists.automattic.com
Mon Aug 6 02:10:01 UTC 2012
#21495: wp_insert_user allows a user to be created with empty passwords
--------------------------+-----------------------------
Reporter: ancawonka | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Users | Version:
Severity: minor | Keywords:
--------------------------+-----------------------------
While looking at the different files where user information is created, I
noticed that there are some differences between
wp_insert_user(programmatic creation of users) and edit_user (called from
the admin).
wp_insert_user assumes that a user_pass parameter is included, which
creates a user with no password.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/21495>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list